Allow generation of DSA2 keys without --enable-dsa2.

2025-07-03 22:56:33 +02:00 · 2009-05-20 09:57:10 +00:00 · 2009-05-20 09:57:10 +00:00 · 556d4ed983
commit 556d4ed983
parent ad6326185e
4 changed files with 17 additions and 16 deletions
--- a/doc/ChangeLog
+++ b/doc/ChangeLog
@ -1,3 +1,8 @@
+2009-05-20  Werner Koch  <wk@g10code.com>
+
+	* gpg.texi (GPG Configuration Options): Explain new meaning of
+	--enable-dsa2.
+
 2009-03-16  David Shaw  <dshaw@jabberwocky.com>

 	* gpg.texi (GPG Configuration Options): Document keyserver-options
--- a/doc/gpg.texi
+++ b/doc/gpg.texi
@ -1093,10 +1093,10 @@ validation. This option is only meaningful if pka-lookups is set.

@item --enable-dsa2
@itemx --disable-dsa2
-Enables new-style DSA keys which (unlike the old style) may be larger
-than 1024 bit and use hashes other than SHA-1 and RIPEMD/160. Note
-that very few programs currently support these keys and signatures
-from them.
+Enable hash truncation for all DSA keys even for old DSA Keys up to
+1024 bit.  This is also the default with @option{--openpgp}.  Note
+that older versions of GnuPG also required this flag to allow the
+generation of DSA larger than 1024 bit.

@item --photo-viewer @code{string}
 This is the command line that should be run to view a photo ID. "%i"